Next Generation Emulation banner
Cancel

PCSX2 and zlib...

516 Views 1 Reply 2 Participants Last post by  nonam3
I
Hello,

I found that PCSX2 uses Zlib 1.2.1, but there's a newer version - 1.2.2, which, according to http://www.zlib.net/, "eliminates a potential security vulnerability in zlib 1.2.1". Why doesn't PCSX2 upgrade?


http://www.kb.cert.org/vuls/id/238678
Reply
Save
Like
1 - 2 of 2 Posts
N
Although i'm not of the team, but i'll speak in a project i knkow closely, in wich we use zlib to transmit and receive data in secure enviroment (2 isolated pc's) and although zlib update is available since october, we only last month make the update.
Changlelog
# Eliminate a potential security vulnerability when decoding invalid compressed data
# Fix bug when decompressing dynamic blocks with no distance codes
# Do not return an error when using gzread() on an empty file
Click to expand...
As you can see it corrects bugs that some of them are dificult to happen/exploit. In the case of pcsx2 zlib the security risk is minimum, because we will not have any hacker atacking pcsx2, but for example in the emule projec the update was done immediatly. Another point is that no bigger perfomance improvement, it's just a bugfix release.

This doesn't mean that pcsx2 team will not upgrade but probably is not Number One priority.

This are only my thoughs. Sorry ...
Reply
Save
Like
1 - 2 of 2 Posts
This is an older thread, you may not receive a response, and could be reviving an old thread. Please consider creating a new thread.
Next Generation Emulation
A forum community dedicated to all emulation enthusiasts. Come Join discussion on all platforms from Nintendo, Microsoft Xbox, Sony Playstation, to PC. Coding, tips, builds, specs, tricks and more.
Full Forum Listing
Explore Our Forums
Open Discussion Game/Console Discussion PCSX2 Forum ePSXe Problems with Games
Top